|
|||
Rule General Information |
---|
Release Date: | 2014-12-29 | |
Rule Name: | Oracle Database sys.pbsde.init Procedure Buffer Overflow Vulnerability -1 (CVE-2005-0873) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Multiple cross-site scripting (XSS) vulnerabilities in test.jsp in Oracle Reports Server 10g (9.0.4.3.3) allow remote attackers to inject arbitrary web script or HTML via the (1) desname or (2) repprod parameter. | |
Impact: | Remote code execution | |
Affected OS: | Windows, Other Unix | |
Reference: | SecurityFocusBID:15134 CVE-2005-0873 |
|
Solutions |
---|
Update vendor's patch. |